Quote Originally Posted by Xponder1 View Post
I think this is a bit of a stretch. The only accounts at any risk are the ones who enable api and I dont think the api option is listed in vpanel anymore. I know last time I checked you could still get there if you know the url but 98% of customers probably do not even know it exists. It was a test and there is room for improvement. I am sure thats why its not considered beta.
It's a stretch if we were implying that everyone's account is at risk, but that's not what is being said. Anyone who uses the API as implemented, however, put's their account at risk by passing the user name and password in the URL.